The Deep Blue theme for WordPress is potentially at risk of malicious activity. In versions of the theme up to and including 1.9.2, there is a missing component that checks the type of files that can be uploaded. Without it, unauthenticated users can upload any kind of file to the server, which can lead to remote code execution.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
